-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 02/22/2010 04:38 PM, Nigel Kukard wrote: > > Do you not mean "remove"? if you permit BEFORE the policy check, you > will never get to the policy check. Permit AFTER it maybe? > Yes, my apologies for the typo. > >> Or should it be in a different order? > > You've not told us what you wish to accomplish, so its pretty much > impossible for me to say if you want it before or after. > > If you permit BEFORE , you won't get a policy check, because you're > unconditionally accepting the message. If you permit AFTER, you will get > a policy check for mynetworks ... it all depends what you wish to > accomplish with your configuration. > The intention is to check policy before sending outbound mail. From any host, to any host. The target policy is quota. I've moved mynetworks so that it comes after policyd. > >> >>>> >>>> >>>> My /etc/cluebringer.conf has the following regarding logging (which i >>>> enabled while troubleshooting, out of the box, it was disabled >> completely. >>>> >>>> # Log level: >>>> # 0 - Errors only >>>> # 1 - Warnings and errors >>>> # 2 - Notices, warnings, errors >>>> # 3 - Info, notices, warnings, errors >>>> # 4 - Debugging >>>> log_level=4 >>>> >>>> # File to log to instead of stdout >>>> log_file=/var/log/cbpolicyd.log >>>> >> >>> You're missing the line with what to log, there is another log option >>> which lists all the various portions of the policyd internals. >> >>> -N Thanks for the pointer. I've now configured this line as follows: log_detail=modules,tracking,policies,protocols And restarted policyd. Logging has filled out nicely. It appears that the re-order has fixed the issue, and in the process I've learned quite a bit about how all of this fits together. Thanks for the assistance! -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/ iEYEARECAAYFAkuDA0AACgkQsZqG4IN3sulauwCcDeQ1ZtgnOy09YDrlaNFy5OVy Pi0AoInlYHky/fPGdPLRtSlViQ8Wcu6N =E1YR -----END PGP SIGNATURE----- _______________________________________________ Users mailing list [email protected] http://lists.policyd.org/mailman/listinfo/users
